nelson%bolyard.com
995213d2df
Fix bug 337104 and bug 337105. Don't crash if we run out of memory
...
in ssl2_ConstructCipherSpecs(). r=Alexei.Volkov Coverity 442 & 443.
2006-06-07 17:53:19 +00:00
julien.pierre.bugs%sun.com
172c1bdf45
Fix for bug 326637 . Unnecessary request of PKCS11 device password. r=rrelyea
2006-06-07 02:30:27 +00:00
julien.pierre.bugs%sun.com
e602259ec8
Fix for bug 340040 - add certutil option to verify an OCSP responder cert. r=nelson
2006-06-06 01:06:23 +00:00
alexei.volkov.bugs%sun.com
e70d27d7ba
[Bug 339908] 3 NULL ptr crashes when PK11_GetBestSlot returns NULL. r=nelson
2006-06-02 20:34:04 +00:00
wtchang%redhat.com
41c9c343c1
Import NSPR 4.6.2.
2006-06-02 05:18:01 +00:00
wtchang%redhat.com
cdd64c7beb
Bugzilla bug 338599: added new function SECKEY_SignatureLen and use it
...
instead of SECKEY_PublicKeyStrength to get ECDSA signature lengths.
Removed the 'type' member from the VFYContextStr structure because that
info is in the 'key->keyType' field. Set error codes when functions
fail (return 0). r=nelsonb.
Modified Files:
cryptohi/keyhi.h cryptohi/seckey.c cryptohi/secvfy.c
nss/nss.def ssl/ssl3con.c
2006-05-31 23:54:52 +00:00
alexei.volkov.bugs%sun.com
72df55c274
[Bug 220380] Add SSL client auth stress tests.
...
Attachment "auth patch"(#222740 ). r=nelson
2006-05-31 18:06:02 +00:00
wtchang%redhat.com
a07f869b7a
Bugzilla Bug 338552: added StartCom CA certificate to NSS. The patch is
...
contributed by Eddy Nigg, StartCom Ltd. <eddy_nigg@startcom.org>. r=wtc.
a=hecker.
Modified Files: certdata.c certdata.txt nssckbi.h
2006-05-31 17:18:54 +00:00
julien.pierre.bugs%sun.com
ba7825ee28
Fix for bug 336477 . Fix for CERT_UncacheCRL error checking. r=nelson
2006-05-31 01:57:55 +00:00
alexei.volkov.bugs%sun.com
47817668ff
[Bug 337014] OOM crash [@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen][@ PORT_ArenaAlloc - PK11_PQG_ParamGenSeedLen] Dereferencing possibly NULL "varena". r=nelson
2006-05-22 23:08:04 +00:00
alexei.volkov.bugs%sun.com
3aa52be061
[Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c) [Attachment 222949]. r=nelson
2006-05-22 22:38:56 +00:00
wtchang%redhat.com
3533f0c590
Bugzilla Bug 320336: improved the comments for SECITEM_AllocItem in
...
secitem.h. Made SECITEM_AllocItem fail (return NULL) if the allocation of
the buffer fails, as documented. r=nelsonb.
Modified files: secitem.c secitem.h
2006-05-22 22:24:34 +00:00
wtchang%redhat.com
68708d13f4
Bugzilla Bug 298520: moved the RSA maximum size macros from rsa.c to
...
blapit.h. Removed an out-of-date comment from blapit.h. r=nelsonb.
Modified files: blapit.h rsa.c
2006-05-22 22:10:40 +00:00
wtchang%redhat.com
06496e21ff
Bugzilla Bug 298520: added a comment explain the meaning of the MAX_KEY_LEN
...
macro. r=nelsonb.
2006-05-22 22:08:40 +00:00
alexei.volkov.bugs%sun.com
7cd142bd9c
[Bug 337495] Double free in CRMF_CertReqMsgSetSignaturePOP (security/nss/lib/crmf/crmfpop.c). r=nelson
2006-05-22 21:46:14 +00:00
wtchang%redhat.com
a0ac292413
Bug 236613: change to MPL/LGPL/GPL tri-license.
2006-05-21 21:02:26 +00:00
alexei.volkov.bugs%sun.com
538a18fde0
[Bug 220380] Add SSL client auth stress tests. Attachment #4 . r=julien
2006-05-20 18:32:08 +00:00
nelson%bolyard.com
43d0a92ac7
Promote the use of curve secp192r1 for client auth, since it is faster
...
than most. Bug 332350. r=rrelyea.
2006-05-19 03:59:06 +00:00
nelson%bolyard.com
505671ed77
Eliminate a crash and plug a leak in the error path for function
...
nssSMIMEProfile_Create. Coverity bug 337101. r=alexei.volkov.
2006-05-18 23:29:19 +00:00
nelson%bolyard.com
1eb10c802e
Avoid crash if "item" pointer is NULL. Coverity bug 333555.
...
r=wtchang,alexei.volkov
2006-05-18 21:20:04 +00:00
alexei.volkov.bugs%sun.com
e05b17bc20
[Bug 337008] OOM crash [@ nssList_Add - STAN_InitTokenForSlotInfo - STAN_LoadDefaultNSS3TrustDomain][@ nssList_Clone - nssList_CreateIterator - STAN_LoadDefaultNSS3TrustDomain] Dereferencing possibly NULL "(td)->tokenList". r=nelson, sr=wtc
2006-05-18 21:00:58 +00:00
alexei.volkov.bugs%sun.com
b0a8ac4918
[Bug 337010] OOM crash [@ NSC_DigestKey] Dereferencing possibly NULL "att". r=ne
...
lson,wtc
2006-05-18 20:52:50 +00:00
nelson%bolyard.com
08e023d910
Plug leak. Free cache. Coverity bug 338201. r=alexei.volkov
2006-05-18 20:46:19 +00:00
nelson%bolyard.com
5c56ef5776
Fix several Coverity bugs. Bug 336982. NULL ptr check after ptr deref'ed.
...
Bug 337080. Dead code. r=alexei.volkov
2006-05-18 20:39:19 +00:00
nelson%bolyard.com
88c4f3a0b3
Remove dead old FORTEZZA KEA code. Coverity bug 337098. r=rrelyea,wtchang
2006-05-18 20:24:23 +00:00
alexei.volkov.bugs%sun.com
538630b067
[Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. (second patch) r=nelson
2006-05-18 20:21:12 +00:00
nelson%bolyard.com
a1423c99e4
Don't dereference a NULL secmodprefix argument. Coverity Bug 336981.
...
r=alexei.volkov
2006-05-18 19:44:24 +00:00
nelson%bolyard.com
780c599d61
In SEC_PKCS12DecoderGetCerts, don't dereference p12dcx until AFTER it has
...
been checked for NULL. Coverity bug 336971. r=alexei.volkov
2006-05-18 19:38:59 +00:00
nelson%bolyard.com
0a6525e406
Add 3 assertions to satisfy coverity that tmpt is never NULL in these
...
places. Bug 336995. r=akexei.volkov,wtchang
2006-05-18 19:32:44 +00:00
nelson%bolyard.com
68f51af5fe
Plug leak. Free "info" in error path. Coverity bug 336475.
...
r=wtchang,alexei.volkov
2006-05-18 04:35:32 +00:00
nelson%bolyard.com
9dc19d4fe0
Correct the amount returned by ssl_Writev for short writes on non-blocking
...
sockets. Bug 338325. patch by Chris Newman <chris.newman@sun.com>
r=nelson
2006-05-18 01:10:21 +00:00
wtchang%redhat.com
5e3f18a4c6
Bugzilla bug 338367: check that the array index params->name is within
...
bounds before taking an element from the ecCurve_map array.
r=doublas.stebila.
2006-05-17 23:58:18 +00:00
julien.pierre.bugs%sun.com
6f65f3a2dd
Fix for bug 222300. r=nelson,wtchang
2006-05-17 22:20:08 +00:00
alexei.volkov.bugs%sun.com
e58e3e05ba
[Bug 337011] OOM crash [@ sftk_handleKeyObject][@ sftk_handleKeyParameterObject] Dereferencing possibly NULL "attribute". r=nelson
2006-05-17 20:52:16 +00:00
alexei.volkov.bugs%sun.com
5713a8afaf
[Bug 337326] Leak in nsslowcert_UpdateSubjectEmailAddr (security/nss/lib/softoken/pcertdb.c). r=nelson
2006-05-17 20:46:47 +00:00
alexei.volkov.bugs%sun.com
e1b759198c
[Bug 337009] OOM crash [@ nssList_Count - nssTrustDomain_GetCertsFromCache] Dereferencing possibly NULL "certList". r=nelson
2006-05-17 20:38:59 +00:00
alexei.volkov.bugs%sun.com
ef6e49c6b2
[Bug 337332] Leak in OpenNewDB (security/nss/lib/softoken/keydb.c). r=nelson
2006-05-17 17:56:32 +00:00
alexei.volkov.bugs%sun.com
4fe8d81c2b
[Bug 336485] coverity thinks that nssPKIObject_GetInstances could return null which would lead to a crash [@ listCertsCallback]. r=nelson
2006-05-16 23:47:43 +00:00
julien.pierre.bugs%sun.com
b0d4b44133
Fix for bug 335036. certutil tries to shutdown NSS even if it didn't initialize . r=wtchang, nelson
2006-05-16 02:16:25 +00:00
wtchang%redhat.com
844f45261e
Bugzilla Bug 337025: removed more unused or trivially used variables.
...
r=alexei.volkov,nelson.bolyard.
2006-05-16 01:57:04 +00:00
wtchang%redhat.com
942eb77419
Bug 305835: Remove NSS_ENABLE_ECC ifdefs in libssl. r=wtc,nelsonb
2006-05-16 01:14:43 +00:00
wtchang%redhat.com
49a4fc689f
Bugzilla Bug 298506: a first cut at Solaris auditing. The patch is
...
contributed by Glen Beasley of Sun. r=wtc.
Modified Files:
cmd/platlibs.mk lib/softoken/config.mk lib/softoken/fipstokn.c
2006-05-16 01:04:05 +00:00
julien.pierre.bugs%sun.com
42f2f41bff
Fix for bug 335036 . NSS_Shutdown() does not check that NSS is initialized. r=nelson, alexei
2006-05-16 00:10:04 +00:00
julien.pierre.bugs%sun.com
5ea61ffe76
Fix for bug 337789 . PK11_FindKeyByAnyCert doe snot work if softoken is in FIPS140-2 mode. r=wtchang, rrelyea, nelson
2006-05-15 23:51:01 +00:00
alexei.volkov.bugs%sun.com
6b1e6d3bf2
[Bug 336482] crash or hopefully deadcode [@ crmf_copy_poposigningkey]
...
because Pointer "destPopoSignKey" dereferenced before NULL check. r=nelson
2006-05-15 21:05:13 +00:00
alexei.volkov.bugs%sun.com
5940997e85
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337154] Coverity 321, dead code in mozilla/security/nss/lib/pk11wrap/pk11cert.c. r=wtchang
2006-05-15 20:58:10 +00:00
alexei.volkov.bugs%sun.com
968bb1125f
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337086] Coverity 446, dead code in mozilla/security/nss/lib/certhigh/ocsp.c. r=wtchang
2006-05-15 20:52:01 +00:00
alexei.volkov.bugs%sun.com
7b49a9fc5a
Patch contributed by jonsmirl@yahoo.com
...
[Bug 337085] Coverity 447, dead code in mozilla/security/nss/lib/certhigh/ocsp.c
. r=wtchang
2006-05-15 20:44:46 +00:00
alexei.volkov.bugs%sun.com
02307faea5
Patch contributed by timeless@bemail.org
...
[Bug 337025] Coverity 411, dead code in mozilla/security/nss/lib/certdb/stanpcertdb.c. r=nelson
2006-05-15 20:39:38 +00:00
alexei.volkov.bugs%sun.com
b2eede4173
Patch contributed by timeless@bemail.org
...
[Bug 336992] crash [@ pk11_DoKeys] "arg" Pointer dereferenced before NULL check. r=nelson
2006-05-13 00:46:51 +00:00
alexei.volkov.bugs%sun.com
39db992bd1
Patch contributed by timeless@bemail.org
...
[Bug 336972] OOM crash [@ PK11_ImportDERPrivateKeyInfoAndReturnKey] "pki" Pointer allocated by PORT_NewArena dereferenced without NULL check. r=nelson
2006-05-13 00:41:16 +00:00
alexei.volkov.bugs%sun.com
4176224c5b
Patch contributed by timeless@bemail.org
...
[Bug 336466] oom crash [@ CERT_DecodeAuthKeyID]. r=nelson
2006-05-13 00:33:09 +00:00
alexei.volkov.bugs%sun.com
0d612a798a
Patch contributed by jonsmirl@yahoo.com
...
[Bug 336935] Coverity 172, dead code in mozilla/security/nss/lib/softoken/keydb.c. r=nelson, r=alexei.volkov.bugs
2006-05-13 00:27:22 +00:00
julien.pierre.bugs%sun.com
a172cbe397
Fix for bug 336477. Memory leak in CERT_UncacheCRL . r=nelson
2006-05-13 00:27:12 +00:00
alexei.volkov.bugs%sun.com
d76295c913
Patch contributed by jonsmirl@yahoo.com
...
[Bug 336932] Coverity 163, dead code in mozilla/security/nss/lib/ssl/ssl3con.c. r=nelson
2006-05-13 00:15:43 +00:00
alexei.volkov.bugs%sun.com
73626f65a8
Patch contributed by timeless@bemail.org
...
[Bug 336481] oom crash [@ crmf_copy_cert_req_msg]
2006-05-13 00:03:12 +00:00
nelson%bolyard.com
28a533ac47
Bug 337093. Remove dead code at label loser in function dbs_readBlob
...
Patch by Jon Smirl <jonsmirl@yahoo.com>, r=wtchang. Coverity bug
2006-05-12 23:37:58 +00:00
wtchang%redhat.com
2a00f3c4d2
Bugzilla Bug 336521: we should search the build tree (${DIST}/${OBJDIR})
...
before /bin and /usr/bin. r=slavomir.katuscak
2006-05-12 20:50:53 +00:00
wtchang%redhat.com
68093029ef
Bugzilla Bug 336934: removed ununsed variable ck_id. The patch is
...
contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
2006-05-12 20:42:13 +00:00
wtchang%redhat.com
4e43ea1d0a
Bugzilla Bug 336937: removed a test that is guaranteed to be true. The
...
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=nelsonb,wtc.
2006-05-12 20:33:47 +00:00
wtchang%redhat.com
cddae0bdc9
Bugzilla bug 336938: removed a test that is guaranteed to be false. The
...
patch is contributed by Jon Smirl <jonsmirl@yahoo.com>. r=wtc.
2006-05-12 16:49:07 +00:00
wtchang%redhat.com
321cb8386e
Bugzilla Bug 298506: Do not log the token name (so the declaration of
...
sftk_getDefTokName in pkcs11i.h and the previous change to sftk_SlotFromID
weren't necessary). Use Linux's audit subsystem if available. r=relyea.
Modified files: fipstokn.c pkcs11.c pkcs11i.h
2006-05-10 21:33:11 +00:00
wtchang%redhat.com
90e7d73574
Bugzilla Bug 298522: implemented ECDSA power-up self-test. The patch was
...
written by Glen Beasley of Sun. r=wtc.
2006-05-08 18:20:28 +00:00
wtchang%redhat.com
16146af129
Bugzilla Bug 333925: added a comment to paraphrase an obscure if statement.
2006-05-05 23:54:05 +00:00
wtchang%redhat.com
580b97817e
Bugzilla Bug 333925: worked around AES test failures of code compiled by
...
Forte 6 update 2 by using the old optimization flags used in NSS 3.10.
r=relyea.
2006-05-05 23:39:29 +00:00
wtchang%redhat.com
836e0c0b9c
Bugzilla Bug 334679: removed a duplicate line in ec_GF2m_validate_point.
...
r=douglas.stebila.
2006-05-05 23:08:50 +00:00
wtchang%redhat.com
798e8d1bc1
Added/removed blank lines to eliminate the diffs between the trunk and the
...
NSS_3_11_BRANCH.
Modified files: pkcs11.c pkcs11c.c
2006-05-05 20:31:30 +00:00
wtchang%redhat.com
01891a9574
Bugzilla Bug 298506: implemented FIPS 140-2 Security Level 2 audit
...
requirements. r=glen.beasley.
Modified Files:
fipstokn.c pkcs11.c pkcs11c.c pkcs11i.h softoken.h softoknt.h
2006-05-05 20:02:47 +00:00
julien.pierre.bugs%sun.com
ba58910b9e
Fix for bug 336335 . Plug leak of a temporary bignum in modular exponentiation . r=wtchang
2006-05-05 01:22:59 +00:00
julien.pierre.bugs%sun.com
1964aace2e
Fix for bug 336335 - memory leaks in ECC code. r=wtchang
2006-05-04 01:05:04 +00:00
julien.pierre.bugs%sun.com
7015af0983
Fix for bug 219932 . NISCC test script enhancements. Patch submitted by Jason Reid (jason.m.reid@sun.com) . r=slavomir.katuscak@sun.com,julien.pierre@sun.com
2006-05-01 22:52:32 +00:00
julien.pierre.bugs%sun.com
d15ad02799
Fix for bug 335021. Add SEC_ASN1_CONSTRUCTED to S/MIME EKP template. r=relyea
2006-04-29 00:18:42 +00:00
rrelyea%redhat.com
5f24a2a77c
Attachment #215739 : Use SSE2 multiply instructions on intel processors. for bug #326482
...
r=nelson r=wtc
2006-04-28 17:06:22 +00:00
christophe.ravel.bugs%sun.com
a8e64c65ca
[Bug 334843] Add rpath for HP-UX on pa-risc
...
r+ neil.williams.
2006-04-27 23:36:20 +00:00
alexei.volkov.bugs%sun.com
143f21193c
[Bug 334274] double free in CRMF_EncryptedKeyGetEncryptedValue. r=nelson
2006-04-27 22:09:28 +00:00
alexei.volkov.bugs%sun.com
f5f5d893ff
[Bug 334326] DecodeV4DBCertEntry: Variable "(entry)->nickname" tracked as NULL was passed to a function that dereferences it. r=rrelyea
2006-04-27 18:35:24 +00:00
alexei.volkov.bugs%sun.com
20919d892f
[Bug 334454] Variable "(key)->pkcs11Slot" tracked as NULL was passed to a function that dereferences it. [@ SECKEY_CopyPrivateKey - SSL_ConfigSecureServer]. r=nelson
2006-04-26 19:40:56 +00:00
alexei.volkov.bugs%sun.com
49cb46e26c
[Bug 333389] sftk_NewAttribute should not crash when so is NULL [@ sftk_NewAttribute]. r=nelson
2006-04-26 19:18:00 +00:00
alexei.volkov.bugs%sun.com
c353bf9e7b
[Bug 334522] pk12util crash in SEC_PKCS12DecoderValidateBags. r=nelson
2006-04-26 06:47:30 +00:00
nelson%bolyard.com
b9c189458d
Disable AMD64 assembly optimizations. Bug 334057. r=nelson
2006-04-25 05:51:23 +00:00
nelson%bolyard.com
249561bf3b
Bug 294537: ssltap should display ASCII CA names from cert request message
...
r=alexei.volkov
2006-04-25 04:58:45 +00:00
nelson%bolyard.com
f02321e973
Backout the last change, undoing the fix for bug 320336 and bug 333405.
2006-04-25 04:39:24 +00:00
alexei.volkov.bugs%sun.com
7fc553fcf8
[Bug 334277] double free in [@ sftk_FreeAttribute - sftk_DeleteAttributeType]. r=relyea
2006-04-25 02:33:58 +00:00
alexei.volkov.bugs%sun.com
97c78b7911
[Bug 334276] double free in [@ SECKEY_CopyPublicKey]. r=nelson
2006-04-25 02:23:52 +00:00
wtchang%redhat.com
085b36691e
Bugzilla Bug 320336: SECITEM_AllocItem should return a NULL pointer if the
...
allocation of its 'data' buffer fails. r=nelson. This checkin fixed bug
333405 as a byproduct.
Modified files: secitem.c secitem.h
2006-04-24 22:50:13 +00:00
nelson%bolyard.com
dbe80e7489
Remove call to printf in ecl/ecp_224.c Bug 334448. r=wtchang
2006-04-24 21:27:38 +00:00
nelson%bolyard.com
dafe77ce6c
Display TLS hello extensions and alerts. Display ECC cipher suites.
...
Bug 333600 and bug 334314. r=Alexei.Volkov
2006-04-24 06:11:41 +00:00
nelson%bolyard.com
1930ea6074
Put nss.def file sections in numeric order, and alphabetical order
...
within sections.
2006-04-24 05:08:04 +00:00
nelson%bolyard.com
0c05899fa2
Bug 323350. sr=rrelyea. This patch makes 3 changes:
...
1) it adds a new ifdef which enables SSL to limit itself to the 3 Suite B
curves.
2) it corrects the creation and parsing of the Supported Curve extension to
conform with the lastest definition, by using 2 bytes to encode the list
length,
3) it changes the algorithm that picks the curve for ECDHE to choose a curve
that is at least as strong as the "weakest link", is mutually supported
by client and server, and is the fastest for its size.
2006-04-23 00:17:18 +00:00
julien.pierre.bugs%sun.com
ff004c3373
Fix for bug 335039. Declare nssCKFWCRyptoOperation_UpdateCombo. r=wtchang
2006-04-22 05:30:18 +00:00
julien.pierre.bugs%sun.com
0a709d0578
Fix red tree on Windows.
2006-04-22 05:18:20 +00:00
alexei.volkov.bugs%sun.com
fc87dbb2fe
[Bug 334183] Double free on error because CERT_FindCertIssuer unexpectedly calls CERT_DestroyCertificate. r=alexei
2006-04-22 02:09:09 +00:00
julien.pierre.bugs%sun.com
1d134e6b56
Fix for bug 331413 . replace signal with sigaction; fix logging. r=wtchang
2006-04-22 01:28:14 +00:00
alexei.volkov.bugs%sun.com
76a9749ba0
Patch contributed by timeless@bemail.org
...
[Bug 334449] oom Crash in crmf_template_copy_secalg. r=nelson
2006-04-22 01:25:57 +00:00
alexei.volkov.bugs%sun.com
d4f39e6449
Patch contributed by timeless@bemail.org
...
[Bug 334436] nsslowcert_UpdateSubjectEmailAddr doesn't consistently use emailAddrs as a guard of nemailAddrs guarding emailAddrs[0]. r=nelson
2006-04-22 01:19:41 +00:00
alexei.volkov.bugs%sun.com
aea5eb0f12
Patch contributed by timeless@bemail.org
...
[Bug 334328] nsspkcs5_PKCS12PBE: Variable "A" tracked as NULL was dereferenced. r=nelson
2006-04-22 01:13:15 +00:00
alexei.volkov.bugs%sun.com
86494ef39a
[Bug 334275] double free in [@ PK11_ListPublicKeysInSlot]. r=nelson
2006-04-22 01:08:17 +00:00
alexei.volkov.bugs%sun.com
9c061b607a
[Bug 334273] double free in SECKEY_DecodeDERSubjectPublicKeyInfo. r=nelson
2006-04-22 01:03:18 +00:00
alexei.volkov.bugs%sun.com
5f88dfbdaa
[Bug 334240] double free in nsslowkey_ConvertToPublicKey if SECITEM_CopyItem or SECITEM_CopyItem fail. r=nelson
2006-04-22 00:59:13 +00:00
alexei.volkov.bugs%sun.com
8feb62dbd0
[Bug 334236] double free in PK11_ListPrivKeysInSlot if keys allocation fails. r=nelson
2006-04-22 00:55:29 +00:00